Vulnerabilities > Improper Authentication
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-07-06 | CVE-2023-30675 | Improper Authentication vulnerability in Samsung Pass 4.0.05.1 Improper authentication in Samsung Pass prior to version 4.2.03.1 allows local attacker to access stored account information when Samsung Wallet is not installed. | 5.5 |
| 2023-06-30 | CVE-2023-32620 | Improper Authentication vulnerability in Wavlink Wl-Wn531Ax2 Firmware Improper authentication vulnerability in WL-WN531AX2 firmware versions prior to 2023526 allows a network-adjacent attacker to obtain a password for the wireless network. | 6.5 |
| 2023-06-28 | CVE-2023-32222 | Improper Authentication vulnerability in Dlink Dsl-G256Dg Firmware Bz1.00.27 D-Link DSL-G256DG version vBZ_1.00.27 web management interface allows authentication bypass via an unspecified method. | 9.8 |
| 2023-06-26 | CVE-2023-32523 | Improper Authentication vulnerability in Trendmicro Mobile Security 9.8 Affected versions of Trend Micro Mobile Security (Enterprise) 9.8 SP5 contain some widgets that would allow a remote user to bypass authentication and potentially chain with other vulnerabilities. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit these vulnerabilities. This is similar to, but not identical to CVE-2023-32524. | 8.8 |
| 2023-06-26 | CVE-2023-32524 | Improper Authentication vulnerability in Trendmicro Mobile Security 9.8 Affected versions of Trend Micro Mobile Security (Enterprise) 9.8 SP5 contain some widgets that would allow a remote user to bypass authentication and potentially chain with other vulnerabilities. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit these vulnerabilities. This is similar to, but not identical to CVE-2023-32523. | 8.8 |
| 2023-06-23 | CVE-2023-35154 | Improper Authentication vulnerability in ENG Knowage Knowage is an open source analytics and business intelligence suite. | 6.5 |
| 2023-06-23 | CVE-2023-28073 | Improper Authentication vulnerability in Dell Latitude 5530 Firmware and Precision 3570 Firmware Dell BIOS contains an improper authentication vulnerability. | 7.8 |
| 2023-06-22 | CVE-2023-3326 | Improper Authentication vulnerability in Freebsd pam_krb5 authenticates a user by essentially running kinit with the password, getting a ticket-granting ticket (tgt) from the Kerberos KDC (Key Distribution Center) over the network, as a way to verify the password. | 9.8 |
| 2023-06-21 | CVE-2023-34340 | Improper Authentication vulnerability in Apache Accumulo 2.1.0 Improper Authentication vulnerability in Apache Software Foundation Apache Accumulo. This issue affects Apache Accumulo: 2.1.0. Accumulo 2.1.0 contains a defect in the user authentication process that may succeed when invalid credentials are provided. | 9.8 |
| 2023-06-20 | CVE-2023-3337 | Improper Authentication vulnerability in Online Shopping System Advanced Project Online Shopping System Advanced 1.0 A vulnerability was found in PuneethReddyHC Online Shopping System Advanced 1.0. | 9.8 |